摘要
设计并实现了一种基于数字证书识别及校验的物联网固件安全检测系统。针对下载的不同厂商的固件,研究了在固件中识别公钥、私钥、签名等数字证书文件的方法,设计了对证书内容进行有效性校验的模型,构建了证书管理数据库,在此基础上实现了完整的固件安全检测系统。实验结果表明,该系统可对固件中的证书进行高效识别和有效性校验,并对样本外存在数字证书安全缺陷的固件进行了成功检测。
A security detection system for Internet of Things firmware based on digital certificate identification and verification is designed and implemented.For the firmware download from different vendors,this paper studies the method of identifying digital certificate files such as public key,private key and signature file in firmware,designs a model to verify the validity of certificate contents,builds a certificate management database,and implements a complete firmware security detection system.The experimental results show that the system can effectively identify and validate the certificates in the firmware,and successfully detect the firmware with security defects of digital certificates outside the samples.
作者
穆超
杨明
杨明曌
王彪
王继志
MU Chao;YANG Ming;YANG Ming-zhao;WANG Biao;WANG Ji-zhi(Shandong Provincial Key Laboratory of Computer Networks,Shandong Computer Science Center(National Supercomputer Center in Jinan),Qilu University of Technology(Shandong Academy of Sciences),Jinan 250014,China)
出处
《山东科学》
CAS
2020年第4期131-135,144,共6页
Shandong Science
基金
山东省重大科技创新工程(2019JZZY020128)
山东省科学院基础研究基金(科基合字(2018)12号—16号)
山东省科学院创新工程专项。
关键词
物联网
固件
数字证书
检测
Internet of Things
firmware
digital certificate
detection